$ rpki-client -vvf rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/A3F44008D7A211EEA4F45676C4F9AE02.roa File: A3F44008D7A211EEA4F45676C4F9AE02.roa (raw, json) Hash identifier: a7dziqAdCKwHsLIsEIGDuAGznbdMDCGC/Dis+R5cbyY= Subject key identifier: A3:B1:44:EA:7A:C2:65:B9:41:CC:F9:FC:38:11:5D:76:F7:C1:8B:0C Certificate issuer: /CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Certificate serial: 0FAF Authority key identifier: 4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/A3F44008D7A211EEA4F45676C4F9AE02.roa Signing time: Fri 01 Mar 2024 08:06:43 +0000 ROA not before: Fri 01 Mar 2024 08:06:43 +0000 ROA not after: Mon 30 Dec 2024 00:00:00 +0000 asID: 45355 IP address blocks: 103.75.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 25 May 2024 14:50:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4015 (0xfaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BE096/serialNumber=4ABDA24AD7BD9E8D9CEFB35938D0A878804C62E4 Validity Not Before: Mar 1 08:06:43 2024 GMT Not After : Dec 30 00:00:00 2024 GMT Subject: CN=65e18c93-3b48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:72:4f:7c:7d:92:6d:34:84:35:5d:1d:aa:d8: 78:b4:36:48:07:81:ae:7f:4e:2a:55:62:c1:ea:88: a9:fc:13:ee:b1:b5:84:e2:37:98:81:ac:37:f8:f8: a4:2a:5a:e7:c6:ad:c4:41:d2:ac:e1:3a:2f:be:a0: 77:46:0e:95:fb:dc:27:56:ef:c7:a2:95:bc:3a:ac: 66:75:ea:aa:d2:61:92:c3:f6:e1:47:1d:40:01:09: e2:fa:1b:79:f4:44:71:a4:3b:d4:09:5c:4b:c7:27: 2b:1d:da:ac:5d:d7:86:27:e7:38:f1:6e:4e:c7:98: 4e:21:8b:a7:7e:58:c9:6b:d1:73:31:17:e6:db:68: 58:ba:26:94:e7:7f:c4:df:ef:3d:a5:9d:f1:71:42: 4e:09:07:14:6a:21:d8:7e:38:2d:be:1d:02:4e:5a: 0f:a3:b8:2a:17:62:40:fd:30:95:e0:e8:f7:9a:19: 11:f4:b6:13:1c:40:2c:49:9b:85:28:12:22:ce:19: 1b:30:03:6d:ee:55:86:fc:d6:e2:83:1f:b9:41:b9: f7:87:91:64:e5:e0:9b:6e:5a:81:3b:bc:8c:de:75: 31:bf:af:4a:de:f4:da:54:92:e6:36:10:77:79:39: e9:43:03:0f:9e:d7:c0:fd:15:72:80:fd:4c:a1:72: 39:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B1:44:EA:7A:C2:65:B9:41:CC:F9:FC:38:11:5D:76:F7:C1:8B:0C X509v3 Authority Key Identifier: keyid:4A:BD:A2:4A:D7:BD:9E:8D:9C:EF:B3:59:38:D0:A8:78:80:4C:62:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/Sr2iSte9no2c77NZONCoeIBMYuQ.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Sr2iSte9no2c77NZONCoeIBMYuQ.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BE096/2FBB440E334511E998C5673BC4F9AE02/A3F44008D7A211EEA4F45676C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.75.21.0/24 Signature Algorithm: sha256WithRSAEncryption 84:11:c8:1e:4e:ce:38:38:5a:2b:1f:07:73:fd:0f:f4:27:74: 5e:31:ed:1d:c2:57:dd:03:10:1a:63:80:09:c9:04:f7:38:f0: 41:c4:ee:95:53:a2:b8:67:d4:29:b7:e8:40:19:39:6f:0d:3d: f0:d9:66:a0:11:ba:c8:28:13:d1:b4:55:51:d9:d0:aa:b2:f3: 33:0d:17:eb:9e:88:3c:71:aa:d3:92:cc:c7:24:a2:0a:76:67: 46:39:f4:8a:c9:f7:16:64:df:fd:c2:1f:d0:e4:88:53:46:b4: 1a:a2:67:cd:af:9a:95:cd:a2:b2:09:7b:a0:a8:04:7f:aa:cb: 75:98:e0:90:c0:89:e8:d8:dc:a4:c5:86:f8:e8:7d:79:e4:a5: a6:40:90:65:0f:7e:c6:ba:da:b8:a8:4d:49:4a:21:db:a2:69: 9a:5e:9c:e1:2d:e3:de:75:d9:74:ea:56:be:26:df:42:d1:e6: f3:29:7d:e9:b0:cf:74:28:e2:83:4f:ef:cc:08:19:a4:43:e2: b6:3a:b1:76:f3:b2:87:bf:a1:58:a3:38:f6:b6:81:c8:ea:36: ab:e9:bc:d6:ce:29:f4:aa:d2:46:b9:4d:22:84:f3:c9:07:b3: 30:16:4a:ad:96:2a:74:f2:6c:fb:6d:5d:f3:95:8b:d8:1b:c4: dc:51:9e:21 -----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgICD68wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkUwOTYxMTAvBgNVBAUTKDRBQkRBMjRBRDdCRDlFOEQ5Q0VGQjM1OTM4RDBBODc4 ODA0QzYyRTQwHhcNMjQwMzAxMDgwNjQzWhcNMjQxMjMwMDAwMDAwWjAYMRYwFAYD VQQDEw02NWUxOGM5My0zYjQ4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAsXJPfH2SbTSENV0dqth4tDZIB4Guf04qVWLB6oip/BPusbWE4jeYgaw3+Pik Klrnxq3EQdKs4TovvqB3Rg6V+9wnVu/HopW8Oqxmdeqq0mGSw/bhRx1AAQni+ht5 9ERxpDvUCVxLxycrHdqsXdeGJ+c48W5Ox5hOIYunfljJa9FzMRfm22hYuiaU53/E 3+89pZ3xcUJOCQcUaiHYfjgtvh0CTloPo7gqF2JA/TCV4Oj3mhkR9LYTHEAsSZuF KBIizhkbMANt7lWG/Nbigx+5Qbn3h5Fk5eCbblqBO7yM3nUxv69K3vTaVJLmNhB3 eTnpQwMPntfA/RVygP1MoXI5XwIDAQABo4IClTCCApEwHQYDVR0OBBYEFKOxROp6 wmW5Qcz5/DgRXXb3wYsMMB8GA1UdIwQYMBaAFEq9okrXvZ6NnO+zWTjQqHiATGLk MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCRTA5Ni8yRkJCNDQwRTMz NDUxMUU5OThDNTY3M0JDNEY5QUUwMi9TcjJpU3RlOW5vMmM3N05aT05Db2VJQk1Z dVEuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1NyMmlTdGU5bm8yYzc3TlpPTkNvZUlCTVl1US5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QkUwOTYvMkZCQjQ0MEUzMzQ1MTFFOTk4QzU2NzNCQzRGOUFFMDIvQTNGNDQwMDhE N0EyMTFFRUE0RjQ1Njc2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwHwYIKwYBBQUHAQcBAf8E EDAOMAwEAgABMAYDBABnSxUwDQYJKoZIhvcNAQELBQADggEBAIQRyB5Ozjg4Wisf B3P9D/QndF4x7R3CV90DEBpjgAnJBPc48EHE7pVTorhn1Cm36EAZOW8NPfDZZqAR usgoE9G0VVHZ0Kqy8zMNF+ueiDxxqtOSzMckogp2Z0Y59IrJ9xZk3/3CH9DkiFNG tBqiZ82vmpXNorIJe6CoBH+qy3WY4JDAiejY3KTFhvjofXnkpaZAkGUPfsa62rio TUlKIduiaZpenOEt49512XTqVr4m30LR5vMpfemwz3Qo4oNP78wIGaRD4rY6sXbz soe/oVijOPa2gcjqNqvpvNbOKfSq0ka5TSKE88kHszAWSq2WKnTybPttXfOVi9gb xNxRniE= -----END CERTIFICATE-----Generated at Sat May 18 19:15:26 2024 by rpki-client on console-ams.rpki-client.org